Nicklas Mikkelinen

NICKLAS
MIKKELINEN

Curriculum Vitae

• 21/11/1986
• +46-735-746-082
[email protected]
• Boden, Sweden

Professional Profile

Senior security leader with a background in global industry and critical infrastructure. Currently leading cybersecurity and CSL (NIS2) alignment at Gestamp Hardtech, with a focus on transitioning complex OT environments from reactive maintenance to proactive resilience.

Extensive experience with the Swedish Protective Security Act and a specialist in GRC, ensuring that compliance acts as a business enabler. My leadership is built with focus on the individual, developing high-performance teams and modernizing security culture to enable a secure-by-design infrastructure.

Strategic Skills

Security & Risk Management: Information Security, Protective Security (Säkerhetsskydd), Risk Management
Frameworks & Compliance: GRC, NIS2/CSL, ISO 27001, NIST, GDPR, DORA
Infrastructure: IT/OT Security, Infrastructure Resilience, Industrial Cybersecurity
Leadership & Governance: Executive Reporting, Steering Committees, Change Management, Security Strategy, Crisis Management, Authority Collaboration

Work Experience

CIO & CSO
Gestamp Hardtech AB
2025 - TODAY
  • Member of the Executive Management Team at Gestamp Hardtech Sweden, providing strategic direction for security and IT.
  • Regional CSO and CIO responsibility with primary focus on information security governance and physical security.
  • Leading regional CSL (NIS2) alignment and implementing cybersecurity frameworks within Sweden.
  • Managing the security transition of complex OT systems, shifting reactive maintenance to proactive resilience.
  • Ensuring regulatory compliance and risk mitigation in a global industrial context, reporting directly to the Managing Director.
  • Coordinating security operations, incident response and change management during an organizational divestment.
Information Security Manager
Swedbank AB
2023 - 2025
  • Information Security Manager (ISM) for Group Risk, Legal, Internal Audit and Compliance.
  • Strategic security advisor for control functions, serving as a functional extension of the Group CISO.
  • Delivered security governance and strategic risk reports to senior leadership within the business areas.
  • Ensured regulatory alignment across complex stakeholder landscapes in a highly regulated financial environment.
  • Facilitated security training and improved security awareness across specialized professional groups.
CISO & Deputy Head of Protective Security
Luleå Municipality
2021 - 2023
  • Chief Information Security Officer (CISO) and Deputy Head of Protective Security (Biträdande säkerhetsskyddschef).
  • Full accountability for ISMS implementation and security strategy across all municipal departments.
  • Managed security frameworks for essential services governed by the Swedish Protective Security Act.
  • Coordinated regional civil preparedness and authority collaboration with Säkerhetspolisen and MSB.
  • Responsible for security clearance processes and protective security analysis for critical infrastructure.
  • Provided strategic advice and risk reporting to the municipal leadership on national security matters.
Security Ambassador
Facebook (Meta)
2020 - 2021
  • Led the global Enterprise Engineering privacy and policies pod, focusing on policy deployment.
  • Cross-functional coordination with information security partners to expand global guidelines.
Technical Principal
Facebook (Meta)
2017 - 2021
  • Managed IT infrastructure deployment and administration for EMEA datacenters and new offices.
  • Orchestrated logistics and fulfillment for end-user IT equipment and video conferencing systems.
IT Field Technician
Milestone Technologies, Inc.
2016 - 2017
  • Worked as an IT Field technician, coordinating and maintaining the IT of Facebook datacenter in Luleå.
Supervisor (Teaching Assistant)
The University of Skövde
2014 - 2015
  • Teaching assistance and lab supervision in computer science and information security courses.
IT Consultant
Fanboys AB
2011 - 2012
  • IT consulting role focused on system administration, client support and infrastructure maintenance.
Technical Support
Teleperformance Nordic
2008 - 2010
  • Early-career role in technical support, customer service and quality assurance.

Education

Information Security
Luleå University of Technology
2015 - 2016

MSc. level • Subsidiary subject: Information Security • In-depth study: IT Security

Network and Systems administration
University of Skövde
2012 - 2015

Degree: BSc. in Computer Science • Subsidiary subject: Information Security • In-depth study: Computer Science

Languages

Swedish (Mothertongue) • English (Fluent) • Norwegian (Conversational)

Certificates and Prizes